Path to this page:
Next | Query returned 1 messages, browsing 1 to 10 | previous
CVS Commit History:
2021-11-01 23:14:43 by Thomas Merkel | Files touched by this commit (3) | |
Log message:
Pullup ticket #6524 - requested by taca
net/bind911: security fix
Revisions pulled up:
- net/bind911/Makefile 1.51
- net/bind911/distinfo 1.37
- net/bind911/patches/patch-configure 1.6
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Oct 29 06:02:26 UTC 2021
Modified Files:
pkgsrc/net/bind911: Makefile distinfo
pkgsrc/net/bind911/patches: patch-configure
Log message:
net/bind911: update to 9.11.36
--- 9.11.36 released ---
5736. [security] The "lame-ttl" option is now forcibly set to 0. This
effectively disables the lame server cache, as it could
previously be abused by an attacker to significantly
degrade resolver performance. (CVE-2021-25219)
[GL #2899]
5716. [bug] Multiple library names were mistakenly passed to the
krb5-config utility when ./configure was invoked with
the --with-gssapi=[/path/to/]krb5-config option. This
has been fixed by invoking krb5-config separately for
each required library. [GL #2866]
|
Next | Query returned 1 messages, browsing 1 to 10 | previous